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I CLAIM: 

1. A method for enabling secure communications among 
processing devices, comprising the steps of: 

establishing a first cryptographically secure 
session between a first processing device and a second processing 
where said first processing device is remotely located 
from sib^d second processing device; 

establishing a second cryptographically secure 
session between a third processing device and a fourth processing 
device, whei:e said third processing device is remotely located 
from said fourth processing device, where said first processing 
device communrcates with said third processing device over a 
first communications link, and where said second processing 
device communicates with said fourth processing device over a 
second communications—link; 

geneWting^a session key; 

storing saiJdXsession key in said first processing 



ey information stored in said 
hird processing device via said 
said second cryptographically 



said session key in said third 
st \in part from said session key 




device; 

sending 
second processing device 
second communications 
secure session; 

g^ 

processing device 
information; 

storing said session key in said third processing 

device; and 

establishing a thiird cryptographically secure 
session between said first processing device and said third 
processing device using said session key. 




2. The method of claim 1 wherein said: 

session key information comprises a second random 
number and where said step of generating a session key includes 
the substeps of: 
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said first processing device generating a first 

random number; 

w said second processing device generating said 

second random number and sending said second random number to 
said^ first processing device via said first cryptographically 
secure session; and 

\^ said first processing device forming said session 

key by exclusive ORing said first and second random numbers. 



3 A The method of claim 2 further comprising the steps 



of: 



jaid first processing device sending said first 
random number to\said third processing device via said first 
communications links; and 

establishing the presence of said session key in 
said third processing cie^iceW exclusive-ORing said first random 
number and said second i\andom\ilumber . 



The method of cla 



of; 



first proce 



Lm 3 further comprising the steps 

Lng device sending said first 
d second p;bAcessing device via said first 



'ssi\ng device forming said session 
'st random number and said second 



storing said session 



said 

random number to sa 
cryptographically secure sessio 
said second proc< 
key by exclusive ORing\said fi] 
random number; 

said second processing 

key; 

said second processing deviteA sending said second 
random number to said fourth processing device via said second 
communications link; \^ 

said first processing device sending said first 
random number to said fourth processing device via said first 
communications link and said second cryptographically secure 
session; 
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said fourth processing device forming a session 
key by exclusive ORing said first and second random numbers; 

storing said session key in said fourth processing 

device; and 

establishing a fourth cryptographically secure 
session\between said second and fourth processing devices using 
said session key. 

\ 

5.\ The method of claim 1, wherein information passing 
through said second cryptographically secure session is further 
encrypted by said first cryptographically secure session. 



6. Th^ method of claim 1, wherein said processing 
devices are tamper-broof , 



of claim 6, wherein said first and 
[re trusted agents and said third and 
e money modules. 



7. The 
second processing cyevice^ 
fourth processing devices^ 



8. A method fop ^nabling secure communications among 

v the steps of : 

rst cryptographically secure 
[ing\£ievice and a second processing 
device is remotely located 



processing devices , 

estaklishii 
session between a finst 



isin 



device, where said fii?eC proc< 
from said second processing device; 

establishing a second \cryptographically secure 
session between a third processing device and a fourth processing 
device, where said third processing device is remotely located 
from said fourth processing device, where ^sa id first processing 
device communicates with said third processing device\over a 
first communications link, and where said\second processing 
device communicates with said fourth processing device over\a 
second communications link; 

said first processing device generating a first 

random number; 
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sending said first random number to said second 
processing device via said first cryptographically secure session 
ami to said fourth processing device via said second 
commlinications link, whereby said first, second, and fourth 
processing devices store said first random number; 

said second processing device generating a second 
random number; 

\ sending said second random number to said first 
processing device via said first cryptographically secure session 
and to said third^ processing device via said first communications 
link, whereby sai^ second, first, and third processing devices 
store said second random number; 

said\fourth processing device sending said first 
random number to said third processing device via said second 
cryptographically secuVe session; 

ssing device sending said second 
:>cessing device via said second 



jssing device forming a random 



said thiro proc 
random number to said fourth 
cryptographically secure/ sessio 

said first proc 
session key from said first andjsecond random numbers; 

said second processing device forming said random 
session key from said f jrst andjsecond random numbers; 

said thii 

session key from said filrst and secWi random numbers; 

said f ourtrtsjpr o/cess iWjNde vice forming said random 
session key from said first and seco^\r^ndom numbers; and 

where said first and third processing devices 
cryptographically communicate with said session key, and where 
said second and fourth processing devices cryptographically 
communicate with said session key. \ 



9. The method of claim 8, wherein information passing 
through said second cryptographically secure session is further 
encrypted by said first cryptographically secure session. 
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• 



-so- 
lo. The method of claim 8, wherein said processing 
devices are tamper-proojK "N^ 

claim 10, wherein said first and 
^trusted agents and said third and 



11. The method 



second processing devi 
fourth processing devi 

A** A 3 > 




oney modules, 
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